GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,960
Composer 4,279
Erlang 31
GitHub Actions 21
Go 2,056
Maven 5,237
npm 3,740
NuGet 668
pip 3,421
Pub 12
RubyGems 891
Rust 873
Swift 36

Unreviewed advisories

All unreviewed 238,962

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

490 advisories

Filter by severity

Sort by

Least recently updated

Incorrect Default Permissions vulnerability in Metagauss RegistrationMagic allows Accessing... High Unreviewed

CVE-2023-23976 was published Apr 24, 2024

Certain software builds for the TCL 30Z and TCL 10 Android devices contain a vulnerable, pre... High Unreviewed

CVE-2023-38295 was published Apr 22, 2024

An issue was discovered in a third-party component related to ro.boot.wifimacaddr, shipped on... High Unreviewed

CVE-2023-38291 was published Apr 22, 2024

Insecure Permissions vulnerability in Wondershare Filmora v.13.0.51 allows a local attacker to... High Unreviewed

CVE-2024-26574 was published Apr 8, 2024

Vulnerability of undefined permissions in the Calendar app. Impact: Successful exploitation of... High Unreviewed

CVE-2023-52545 was published Apr 8, 2024

Macro Expert through 4.9.4 allows BUILTIN\Users:(OI)(CI)(M) access to the "%PROGRAMFILES(X86)%... High Unreviewed

CVE-2024-27674 was published Apr 3, 2024

Fortra's Robot Schedule Enterprise Agent for Windows prior to version 3.04 is susceptible to... High Unreviewed

CVE-2024-0259 was published Mar 28, 2024

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... High Unreviewed

CVE-2024-23253 was published Mar 8, 2024

In da, there is a possible permission bypass due to a missing permission check. This could lead... High Unreviewed

CVE-2024-20005 was published Mar 4, 2024

Couchbase Server 7.1.x and 7.2.x before 7.2.4 does not require authentication for the /admin... High Unreviewed

CVE-2023-49338 was published Feb 29, 2024

The TD Bank TD Advanced Dashboard client through 3.0.3 for macOS allows arbitrary code execution... High Unreviewed

CVE-2023-50975 was published Feb 21, 2024

The OpenVPN GUI installer before version 2.6.9 did not set the proper access control restrictions... High Unreviewed

CVE-2023-7235 was published Feb 21, 2024

Incorrect permissions in the installation directories for shared SystemLink Elixir based services... High Unreviewed

CVE-2024-1155 was published Feb 20, 2024

Incorrect directory permissions for the shared NI RabbitMQ service may allow a local... High Unreviewed

CVE-2024-1156 was published Feb 20, 2024

Permission management vulnerability in the lock screen module.Successful exploitation of this... High Unreviewed

CVE-2023-52362 was published Feb 18, 2024

Insecure Permissions issue in Raiden Professional Server RaidenFTPD v.2.4 build 4005 allows a... High Unreviewed

CVE-2023-38960 was published Feb 14, 2024

A vulnerability has been identified in Polarion ALM (All versions). The affected product is... High Unreviewed

CVE-2023-50236 was published Feb 13, 2024

In Telerik Test Studio versions prior to v2023.3.1330, a privilege elevation vulnerability has... High Unreviewed

CVE-2024-0833 was published Jan 31, 2024

Incorrect Default Permissions vulnerability in Hitachi Storage Plug-in for VMware vCenter allows... High Unreviewed

CVE-2024-21840 was published Jan 30, 2024

Dell iDRAC Service Module, versions 5.2.0.0 and prior, contain an Incorrect Default Permissions... High Unreviewed

CVE-2024-22428 was published Jan 16, 2024

Insecure Permissions vulnerability in fit2cloud Cloud Explorer Lite version 1.4.1, allow local... High Unreviewed

CVE-2023-50612 was published Jan 6, 2024

Softing OPC Suite version 5.25 and before has Incorrect Access Control, allows attackers to... High Unreviewed

CVE-2023-37572 was published Dec 5, 2023

In mprivacy-tools before 2.0.406g in m-privacy TightGate-Pro Server, broken Access Control on X11... High Unreviewed

CVE-2023-47250 was published Nov 22, 2023

in OpenHarmony v3.2.2 and prior versions allow a local attacker get confidential information or... High Unreviewed

CVE-2023-3116 was published Nov 20, 2023

IBM InfoSphere Information Server 11.7 could allow an authenticated user to change installation... High Unreviewed

CVE-2023-40363 was published Nov 18, 2023

Previous 1 2 3 4 5 6 7 … 19 20 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

490 advisories